About the job
responsible for:
Establishing and maintaining a corporate wide information security management program to ensure that information assets are adequately protected.
Responsible for identifying, evaluating and reporting on information security risks in a manner that meets compliance and regulatory requirements, and aligns with and supports the risk posture of the enterprise
Process owner of all assurance activities related to:
Availability
Integrity
Confidentiality
Of business information in compliance with the organization’s information security policies.
Working with executive management to determine acceptable levels of risk for the organization.
Ensure that business environment information systems are maintained in a fully functional, secure mode.
Certification:
Certified information security manager CISM
Or
Certified information systems security professional CISSP